From 6ad7d9e2b0de817c058ea2f42a6137cfb44c79c0 Mon Sep 17 00:00:00 2001 From: Derek Jamison Date: Wed, 19 Apr 2023 12:40:33 -0400 Subject: [PATCH] Add scan.ps1 script --- marauder/scan.ps1 | 113 ++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 113 insertions(+) create mode 100644 marauder/scan.ps1 diff --git a/marauder/scan.ps1 b/marauder/scan.ps1 new file mode 100644 index 0000000..720617d --- /dev/null +++ b/marauder/scan.ps1 @@ -0,0 +1,113 @@ +# https://www.github.com/jamisonderek/flipper-zero-tutorials +# +# Pass short secret messages using SSIDs. +# This script will scan for SSIDs that match the pattern of the encoded message. +# The message is encoded using a simple cypher that uses the SSID as the key. +# +# Who you gonna call? "5552368" is: AL6fvOPr, BOI5O5Ag, CRU3Cjn7 or DUgPtAbN + +# This is the list of allowed characters in the message. +$dict = "0123456789ABCDEF-" + +# This is the list of allowed characters in the SSID. +$cypherLetters = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789".ToCharArray() + +# This is the list of SSIDs that were found, so we only display them once. +$ssids = [System.Collections.Generic.List[string]]::new() + +Function Get-Encoded-SSID { + Param( + [Parameter(Mandatory=$true)] + [String]$Message, + [Parameter(Mandatory=$false)] + [String]$Prefix="0" + ) + $letters = ($Prefix + $Message).ToCharArray() + $index = 0 + $i = 1 + $result = "" + foreach($letter in $letters) { + $ch = $dict.IndexOf($letter) + if ($ch -eq -1) { + Write-Host "Invalid character: $letter" + return + } + $index = $index + $ch + if ($index -ge $cypherLetters.Count) { + $index = $index - $cypherLetters.Count + } + $result = $result + $cypherLetters[$index] + $i = $i + 1 + $index = $index + (([int][char]$cypherLetters[$index]) * $i) + $index = $index % $cypherLetters.Count + } + return $result +} + +Function Get-Decoded-SSID { + Param( + [Parameter(Mandatory=$true)] + [String]$SSID + ) + $letters = $SSID.ToCharArray() + $index = 0 + $i = 1 + $result = "" + foreach($letter in $letters) { + $ch = $cypherLetters.IndexOf($letter) + if ($ch -lt $index) { + $ch = $ch + $cypherLetters.Count + } + if (($ch - $index) -gt $dict.Length) { +# echo "Invalid character: $letter" + return + } + $result = $result + $dict[$ch - $index] + $i = $i + 1 + $index = $ch + $index = $index + (([int][char]$cypherLetters[$index]) * $i) + $index = $index % $cypherLetters.Count + } + return $result.Substring(1) +} + +Function Show-Available-Networks-UI { + explorer.exe ms-availablenetworks: + Start-Sleep 3 +} + +Function Get-SSIDS { + $networks = (netsh wlan show networks) + foreach($network in $networks) { + if($network -match "SSID") { + $ssid = $network.split(":")[1].trim() + if ($ssid.Length -gt 0) { + if ($ssids.Contains($ssid)) { + continue + } + $decoded = (Get-Decoded-SSID $ssid) + if ($decoded.Length -gt 0) { + Write-Host ($ssid + ": " + $decoded) -ForegroundColor Green + } else { + Write-Host ($ssid + "- NO MATCH") -ForegroundColor Red + } + $ssids.Add($ssid) + } + } + } +} + +while ($true) { + Show-Available-Networks-UI + For( $i = 0; $i -le 6; ++$i ) { + Get-SSIDS + Write-Host "Sleeping..." -ForegroundColor Yellow -NoNewline + Start-Sleep 4 + Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline + Write-Host " " -NoNewline + Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline + Write-Host "Scanning..." -ForegroundColor Yellow -NoNewline + Start-Sleep 1 + Write-Host "`b`b`b`b`b`b`b`b`b`b`b" -NoNewline + } +}